Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/5iMEjW7hKeJ-HDFLOFhf3hnNnL4.roa
File: 5iMEjW7hKeJ-HDFLOFhf3hnNnL4.roa (raw, json)
Hash identifier: ystwwmQAGKWZ5b6nBT88Q2uXfoh7ze9rIxatYbqPriU=
Subject key identifier: E6:23:04:8D:6E:E1:29:E2:7E:1C:31:4B:38:58:5F:DE:19:CD:9C:BE
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018BD22319000F329C82FBFC1E3F03087014
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/5iMEjW7hKeJ-HDFLOFhf3hnNnL4.roa
Signing time: Wed 15 Nov 2023 08:39:57 +0000
ROA not before: Wed 15 Nov 2023 08:39:57 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48678
IP address blocks: 77.92.146.0/24 maxlen: 24
77.92.153.0/24 maxlen: 24
31.210.48.0/24 maxlen: 24
188.132.185.0/24 maxlen: 24
78.135.66.0/24 maxlen: 24
188.132.201.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 22 Nov 2023 12:51:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8b:d2:23:19:00:0f:32:9c:82:fb:fc:1e:3f:03:08:70:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Nov 15 08:39:57 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e623048d6ee129e27e1c314b38585fde19cd9cbe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b5:ab:29:21:56:50:7c:92:34:1c:0e:0c:fa:
4b:83:92:fb:c3:65:72:ca:e9:54:b7:08:7e:0e:b1:
5e:2f:87:00:99:b2:a1:dc:66:86:aa:7b:5c:46:b5:
b2:9c:57:5b:4c:b8:eb:64:d2:c1:94:0f:37:2b:c1:
2b:61:13:9e:fe:0a:14:58:6f:fd:62:72:83:4b:c0:
70:3f:0b:24:33:e1:82:29:3b:bb:c3:ab:8f:1d:20:
21:82:a9:f4:3f:21:b0:5d:27:88:13:33:f1:99:67:
6c:4e:72:3d:63:c1:f6:14:2f:60:e9:ff:fe:bf:51:
bd:90:88:e8:9a:40:bc:53:9a:92:29:40:48:69:d4:
4b:8a:80:43:0f:ef:78:d6:f3:a2:6d:b6:38:47:25:
84:c3:18:72:bb:fe:d6:07:4e:c6:b8:d1:b5:37:e6:
b4:08:ff:a4:fd:19:85:0d:7a:58:73:6f:18:d2:f4:
fe:24:68:03:28:ef:2c:d7:8d:df:08:2b:96:35:cb:
5b:b2:db:4a:64:76:48:e7:fb:16:cc:79:d1:38:7d:
10:a6:a1:86:47:ea:9d:cc:91:82:7f:85:6d:94:07:
4c:bf:7b:30:80:c3:bf:c5:40:0e:16:24:b0:f5:de:
0f:43:ce:8e:be:0e:9d:7b:87:f5:dc:c2:7e:85:74:
5b:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:23:04:8D:6E:E1:29:E2:7E:1C:31:4B:38:58:5F:DE:19:CD:9C:BE
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/5iMEjW7hKeJ-HDFLOFhf3hnNnL4.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
31.210.48.0/24
77.92.146.0/24
77.92.153.0/24
78.135.66.0/24
188.132.185.0/24
188.132.201.0/24
Signature Algorithm: sha256WithRSAEncryption
0c:92:6b:87:32:b3:b1:f1:77:24:01:47:b9:fe:13:ff:93:22:
d4:87:e8:e6:9d:d2:82:2a:91:02:bc:1b:4e:fc:8e:f0:82:ef:
0c:80:6a:6d:3b:2a:fc:5c:3d:0c:b7:a3:3d:fd:10:12:ac:e5:
96:5f:e2:3d:33:8c:18:ac:ce:26:05:a7:a4:f1:8f:d0:7b:4f:
63:af:15:dc:f4:d0:00:83:b1:39:be:24:56:54:fc:41:04:31:
39:d2:62:78:a1:f4:4b:f8:70:84:c0:19:e6:90:60:64:82:6e:
ef:17:2d:de:61:fc:0a:ee:c6:4d:d5:09:ed:0b:48:ae:3e:93:
51:4a:8a:75:85:88:db:0b:eb:9a:cb:2c:65:09:9c:a9:30:30:
fa:0b:05:a0:3f:d8:f7:ec:89:da:20:8d:fb:ac:74:ca:3b:a0:
37:79:ef:c2:68:8f:a9:e6:e5:9b:3b:f8:da:2a:65:a2:0b:7a:
a8:80:90:a8:b5:fd:42:88:bb:e6:ad:e1:cc:80:da:2a:d9:10:
31:06:07:2e:e5:77:9c:87:ef:83:c6:82:c0:9c:7f:ed:77:4b:
ea:52:ba:80:7e:43:d8:a8:5e:45:c8:04:e8:7d:83:71:fe:ad:
95:6d:97:9e:b8:be:aa:af:f4:d9:89:b2:10:40:99:80:8a:1d:
7d:e2:ab:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 19:07:58 2024 by rpki-client on console-ams.rpki-client.org